Knowledgetree Document Management — known CVE vulnerabilities
Every CVE whose affected-product data names Knowledgetree Document Management, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2007-2849 — CVSS 10.0 (critical): KnowledgeTree Document Management (aka KnowledgeTree Open Source) before STABLE 3.3.7 does not require a password for an unregistered user…
CVE-2008-5857 — CVSS 6.5 (medium): The DropDocuments plugin in KnowledgeTree before 3.5.4a allows remote authenticated users to gain administrative privileges via a certain…
CVE-2008-5858 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in KnowledgeTree before 3.5.4a allow remote attackers to inject arbitrary web script or…